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(54) DIGITAL CAMERA 

(57)Abstract: 

PROBLEM TO BE SOLVED: To provide a digital camera in which the proving strength of 
photographed picture data can be improved. 

SOLUTION: When a shutter button is pressed, a CPU 4 obtains a time from a timer, and "^J^ 
stores it in an RAM 3, and obtains photographic picture data from a CCD 1, and houses the '7 -y^ 
data in the RAM 3, and compresses the housed picture data. Also, the CPU 4 extracts a r-U: ■ 

sequence number from an EEPROM 5, and records a sequence number obtained by adding 1 
to the sequence number in the EEPROM 5. The sequence number and the time data are 
added to the leading of the compressed picture data. A message digest using a message 

digest algorithm is calculated for the prepared picture information. A secret key is read from the EEPROM 5, and 
the message digest is enciphered. The obtained signature is added to the tail of the previous picture information 
so that a group of photographic information can be obtained, and recorded in an outside memory 8. 
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CLAIMS 



[Claim(s)] 

[Claim 1] The digital camera characterized by having held as the public key certificate which consists of 
a digital signature of the authentication [ as opposed to / at least / a public key and this public key for 
the public key and private key of a pair ] engine used for authentication of a public key cryptosystem, 
and a private key, and carrying the cryptographic algorithm of a public key cryptosystem, and the 
generation algorithm of a message digest. 

[Claim 2] The digital camera characterized by enciphering inside using said private key and recording the 
message digest calculated inside from the image data to which said held private key had and photoed 
the external read-out inhibited attribute in the digital camera according to claim 1 on a storage with said 
image data. 

[Claim 3] The digital camera with which said held public key certificate is characterized by having a 
rewriting inhibited attribute from the outside in claim 1 or a digital camera given in 2. 
[Claim 4] The digital camera characterized by rewriting of said held private key or a public key 
certificate being possible when the external authentication key of at least 1 is held and the external 
authentication over this external authentication key is materialized in a digital camera according to claim 
1 to 3. 

[Claim 5] The digital camera characterized by what is recorded on a storage with the image data which 
held the sequence number which expresses the number of sheets of the photoed image in a digital 
camera according to claim 1 to 4, and photoed this sequence number. 

[Claim 6] The digital camera with which said held sequence number is characterized by having a 
rewriting inhibited attribute from the outside in a digital camera according to claim 5. 
[Claim 7] The digital camera characterized by enciphering inside using said held private key, and 
recording on a storage the message digest calculated inside from the image information which combined 
said sequence number and said image data with claim 5 or 6 in the digital camera of a publication with 
said image information. 

[Claim 8] The digital camera characterized by reset of said held sequence number being possible when 
the external authentication key of at least 1 is held and the external authentication over this external 
authentication key is materialized in a digital camera according to claim 5 to 7. 
[Claim 9] The digital camera characterized by enciphering inside using said held private key, and 
recording on a storage the message digest calculated inside from the image information which combined 
the time of day which photoed image data, and this image data in the digital camera according to claim 1 
to 8 with said image information. 

[Claim 10] The digital camera with which a setup of the time of day managed inside is characterized by 
having a modification inhibited attribute from the outside in a digital camera according to claim 9. 
[Claim 1 1] The digital camera characterized by setting modification of the time of day managed inside 
when the external authentication key of at least 1 is held and this external authentication key is 
materialized being possible in claim 9 or a digital camera given in 10. 
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DETAILED DESCRIPTION 



[Detailed Description of the Invention] 
[0001] 

[Field of the Invention] This invention relates to a security system applicable to general data security 
about the security of a digital camera and the image data photoed with the digital camera in the detail 
more. 
[0002] 

[Description of the Prior Art] As a technique which photos an image of evidence with a digital camera. 
JP,7-50827,A "the accident monitoring system using a digital electronic camera" is mentioned, for 
example. This raises the proof nature of image data by recording the image related information of an 
accident related situation correctly to the image data photoed about the accident monitoring system 
using the digital camera carried in an automobile, and forbidding rewriting of **** of evidence or data 
further. In the claim 2, there is a publication "it is characterized by enabling elimination and writing by 
the code setting approach of fixed conditions", and the part becomes a technique used as the nucleus 
which prevents destruction of evidence and an alteration of image data. 
[0003] 

[Problem(s) to be Solved by the Invention] However, it cannot carry out by there being no indication of 
the concrete technique about the above-mentioned code setup or an approach in the example of 
above-mentioned JP,7-50827,A. Moreover, it is very difficult conventionally for a coma in a film to be 
serially located in a line, and for the photograph taken using the usual film to understand the order 
relation of the fact photoed when referring to the developed film from the photoed sequence being clear, 
and to forge the film moreover, to replace the photoed sequence or to change an image. However, the 
image data photoed with the digital camera is easy to perform an alteration, elimination, exchange of 
data, etc., without leaving no trace, since the data itself are digital, and the present condition is that the 
photoed image, i.e., the factual certification force, is low compared with what was photoed with the 
camera of the conventional film base. 

[0004] This invention was made in consideration of the above actual condition, and is made for the 
purpose of offering the digital camera which heightened the certification force of the photoed image 
data. 
[0005] 

[Means for Solving the Problem] Invention of claim 1 is held as the public key certificate which consists 
of a digital signature of the authentication [ as opposed to / at least / a public key and this public key 
for the public key and private key of a pair ] engine used for authentication of a public key cryptosystem, 
and a private key, is characterized by carrying the cryptographic algorithm of a public key cryptosystem, 
and the generation algorithm of a message digest, is a digital camera simple substance and adds a 
signature to image data. 

[0006] In invention of claim 1, invention of claim 2 is characterized by enciphering inside using said 
private key and recording the message digest calculated inside from the image data to which said held 
private key had and photoed the external read-out inhibited attribute on a storage with said image data, 
and raises the security of a signature. 
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^[0007]^'aid held public key certificate is characterized by having a rewriting inhibited attribute from the 
outside, and invention of claim 3 enables it to ensure verification of the signature added to image data in 
claim 1 or invention of 2. 

[0008] Invention of claim 4 enables it to change the private key and public key certificate which are held 
in invention of claim 1 thru/or invention of three either, only when it is characterized by rewriting of said 
held private key or a public key certificate being possible when the external authentication key of at 
least 1 is held and the external authentication over this external authentication key is materialized and 
special conditions are fulfilled. 

[0009] In invention of claim 1 thru/or either of 4, invention of claim 5 holds the sequence number 
showing the number of sheets of the photoed image, is characterized by what is recorded on a storage 
with the image data which photoed this sequence number, and records the sequence number of an 
image. 

[0010] Said held sequence number is characterized by having a rewriting inhibited attribute from the 
outside, and invention of claim 6 prevents from changing the sequence number of an image from the 
outside in invention of claim 5. 

[0011] Invention of claim 7 is characterized by enciphering inside using said held private key, and 
recording on a storage the message digest calculated inside from the image information which combined 
said sequence number and said image data with said image information, and prevents from separating a 
sequence number and image data in claim 5 or invention of 6. 

[0012] in invention of claim 5 thru/or either of 7, invention of claim 8 could reset [ having made and ] 
the sequence number held, only when it was characterized by reset of said held sequence number being 
possible when the external authentication key of at least 1 is held and the external authentication over 
this external authentication key is materialized and special conditions were fulfilled. 
[0013] Invention of claim 9 is characterized by enciphering inside using said held private key, and 
recording on a storage the message digest calculated inside from the image information which combined 
the time of day which photoed image data, and this image data in invention of claim 1 thru/or either of 8 
with said image information, and records a setup of the time of day managed inside in the condition that 
it is unseparable with image data. 

[0014] A setup of the time of day managed inside is characterized by having a modification inhibited 
attribute from the outside, and invention of claim 10 prevents from changing from the outside a setup of 
the time of day managed inside in invention of claim 9. 

[0015] Invention of claim 1 1 enables it to change a setup of the time of day managed inside in claim 9 or 
invention of 10, only when it is characterized by setting modification of the time of day managed inside 
when the external authentication key of at least 1 is held and this external authentication key is 
materialized being possible and special conditions are fulfilled. 
[0016] 

[Embodiment of the Invention] a block diagram for drawing 1 to explain one example of the digital 
camera by this invention — it is — the inside of drawing, and 1 — CCD and 2 — ROM and 3 — RAM 
and 4 — CPU and 5 — EERROM and 6 — a communication link port and 7 — a timer and 8 — external 
memory — it is — cryptographic algorithm (for example, RSA and DES (Data Encryption Standard) 
which are shown in a U.S. Pat. No. 4405829 number.) standard to R0M2 DES may be used for external 
authentication. A message digest generation algorithm (for example, MD5), an image data compression 
algorithm (for example, JPEG), a random-number-generation algorithm, and the Maine control program 
are stored. The private key of a public key cryptosystem, and a public key certificate (an authentication 
engine's signature and public key), a sequence number and an external authentication key are stored in 
EEPR0M5. The Maine control program, various algorithms, a private key, a sequence number, an 
external authentication key, etc. are loaded to RAMS if needed. The image information which added a 
sequence number, time of day, a signature, etc. to the photoed image data is recorded on external 
memory (for example, memory card etc.) 8. In addition, an algorithm means a program here. 
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^[001 7]1? a shutter release is pushed, CPU4 will acquire photography image data from CCD1, and will 
hold it in RAM3 at the same time it acquires time of day from a timer and memorizes it to RAM3. And 
the held image data is compressed. The sequence number added to the sequence number one is 
recorded on EEPR0M5 at the same time it takes out a sequence number from EEPR0M5. Next, the 
sequence number previously taken out at the head of the compressed image data and the time-of-day 
data acquired from the timer are added. And the message digest which used the message digest 
algorithm (for example, MD5) to the done image information is calculated. A private key is read from 
EEPR0M5 and the message digest previously calculated using it is enciphered. And the obtained 
signature is added to the last of previous image information, and it considers as the photography 
information on a lump, and records on external memory 8. 

[0018] In case a private key, a public key certificate, a sequence number, and a time-of-day setup are 
changed, the following procedures perform external authentication processing which should be 
performed beforehand. When the algorithm used for external authentication is DES, first, a random 
number is generated inside and the random number is sent out to an external device. It compares with 
the code which enciphered the authorization code with reception from the external device, and 
enciphered the random number generated previously with the 'external authentication key. It supposes 
that external authentication was materialized when those codes were in agreement, and is the security 
status (flag managed by RAM.). An initial state is set to FALSE. It changes into TRUE. 
[0019] With reference to the security status first managed inside when modification of a private key, a 
public key certificate, a sequence number, and a time-of-day setup is required from the exterior, when it 
serves as FALSE, a demand is not received. When it is TRUE, a demand is received, and processing 
according to the demand is performed. Processing changes the security status into FALSE. 
[0020] 

[Effect of the Invention] Use invention of claim 1 for authentication of a public key cryptosystem, and 
even if few, the public key and private key of a pair Since it held as the public key certificate which 
consists of an authentication engine's digital signature to a public key and this public key, and a private 
key and the cryptographic algorithm of a public key cryptosystem and the generation algorithm of a 
message digest were carried In case a signature is added to the photoed image, with required 
information and an algorithm, a signature can be added to image data with a digital camera simple 
substance, and the certification force of the photoed image data can be heightened. 
[0021] Invention of claim 2 is set to invention of claim 1. Said held private key Since it enciphers inside 
using said private key and the message digest which has an external read-out inhibited attribute and 
calculated it inside from the photoed image data is recorded on a storage with said image data The 
reference from the outside of the private key used for generation of a signature becomes impossible. By 
this By being able to raise the security of a signature and adding a signature (what enciphered the 
message digest) to the image data which photoed the signature (what enciphered the message digest) in 
the photoed image The digital camera which photoed image data can be specified and the certification 
force of the photoed image data can be heightened. 

[0022] In claim 1 or invention of 2, since said held public key certificate has a rewriting inhibited 
attribute from the outside, rewriting of it from the outside of a public key certificate becomes impossible, 
invention of claim 3 can ensure by this verification of the signature added to image data with the digital 
camera, can specify the digital camera which photoed image data, and can heighten the certification 
force of the photoed image data. 

[0023] When invention of claim 4 holds the external authentication key of at least 1 in invention of claim 
1 thru/or either of 3 and the external authentication over this external authentication key is materialized 
Since rewriting of said held private key or a public key certificate is possible Only when special 
conditions are fulfilled, modification of the private key held and a public key certificate is attained. By 
this The certification force of the image which could carry out things, renewal of a still more nearly 
periodical key was attained, and the security of a private key increased, and was photoed which 
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^maintains the security of a private key or a public key certificate can be heightened. 
[0024] In invention of claim 1 thru/or either of 4, invention of claim 5 holds the sequence number 
showing the number of sheets of the photoed image, and since it records on a storage with the image 
data which photoed this sequence number, it can heighten the certification force about the context of 
the fact realized with the camera of the film base by record of the sequence number of an image. 
[0025] In invention of claim 5, since said held sequence number has a rewriting inhibited attribute from 
the outside, modification of invention of claim 6 from the outside of the sequence number of an image 
becomes impossible, and thereby, it can raise the security of a sequence number and can heighten the 
certification force about a factual context. 

[0026] Invention of claim 7 the message digest calculated inside in claim 5 or invention of 6 from the 
image information which combined said sequence number and said image data Since it enciphers inside 
using said held private key and records on a storage with said image information A message digest can 
be calculated by the ability to double a sequence number and image data, a signature can be created, it 
can be made by this what cannot separate a sequence number and image data, and the sequence 
number can raise the certification force about a factual context. 

[0027] Since reset of said held sequence number is possible for invention of claim 8 when the external 
authentication key of at least 1 is held and the external authentication over this external authentication 
key is materialized in invention of claim 5 thru/or either of 7 By making resettable the sequence number 
held, only when special conditions are fulfilled By being able to maintain the security of a sequence 
number and resetting a sequence number still more nearly periodically It can prevent being able to 
manage a sequence number in the range which is useful for proving a factual context, and a sequence 
number's becoming large recklessly, and becoming the number which is hard to treat. 
[0028] Invention of claim 9 the message digest calculated inside from the image information which 
combined the time of day which photoed image data, and this image data in invention of claim 1 thru/or 
either of 8 Since it enciphers inside using said held private key and records on a storage with said image 
information, it can record in the condition that the time of day managed inside is unseparable with image 
data, and, thereby, the certification force about the time of day when image data was photoed can be 
heightened. 

[0029] In invention of claim 9, a setup of the time of day managed inside enables modification from the 
outside of a time-of-day setup managed inside since it has a modification inhibited attribute from the 
outside, and can raise the security about a setup of time of day by this, and invention of claim 10 can 
heighten the certification force about the time of day when image data was photoed. 
[0030] Since setting modification of the time of day managed inside when the external authentication 
key of at least 1 is held and this external authentication dark is materialized in claim 9 or invention of 10 
is possible for invention of claim 1 1 Only when special conditions are fulfilled, modification of a time-of- 
day setup managed inside is enabled, thereby, maintaining the security about a setup of time of day, it 
can be periodically set as exact time of day, and the certification force about the time of day when 
image data was photoed can be heightened. 
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DESCRIPTION OF DRAWINGS 



[Brief Description of the Drawings] 

[Drawing 1] It is a block diagram for explaining one example of the digital camera by this invention. 
[Description of Notations] 

1 [ — CPU, 5 / — EEPROM, 6 / — A communication link port, 7 / — A timer, 8 / — External 
memory. ] — CCD, 2 — ROM, 3 — RAM, 4 
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miZ. i>-y>X#^{CljDAfcv-'5r>;^S^SrEE 
PROMS tfBS-r-5. ;^tC, JIISbfc®^x-37C05fe 
^fC$fet'Sif9mb;ti^-^r>7.S^<h, i^-f vA^eStff 

bfcPt^jx-^i^wiD-r-So ^bT, xi$>f)^r>rzm 

^It^fr^fbT^-yt-vy-f v'xT. h7;Urf'JXA 
(0iJAl^, MD5) ^^mVrz:;<y^-i^y'Xz^x.Xh 

^sfw-r^o EEPROM57!)ie.^5^^^s^^mb, 

50 n^&^fflbT5fetCtf^bfc^-y-t-vi5^'fvxXh^Pif 
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(4) 

5 

[0 0 18] m^m, 'j^Mtmm, ->-y>xs^, 

[0 0 19} ^1.?H5*^e,S«?^^», i;^B§iKiiE?^», ->-^r> 

if^Cl^io TRUE t^Jc)TI/^^«-&{C«S*Sr§tj-:)tt, 

7.7^— :$'7.S:F A L S EtC^IET'l). 20 
[0 0 2 0] 

iCWBf -^T;Uzf U XA t -fe- v^'V vxT. h ro^fife 

[0 0 2 1] ii*:ffl2®^?g«, m^mi<Dmmizi^\^^ 

Ji^ U ia# ( / -t - V iS'V X 7. h $r Pg^^t 

^ ^ nrc H^t"- 3^ W IE ;fj i« 26 :g> t *^*T' # ^ o 
[0 0 2 2] W^J^SCD^Bja, gS*]ll$.^t,j«2© 

^iz^o TH^x- ^ izma $ n;t ^« (Di^m^mm \z 
ii^snfciii^x-3'©aEBj:^j^i^«?)?,ct*tT#s. 50 



6 

[0 0 2 3] mmT^ACDmrnt. w^t^siTiMsoi^-r 
xfi^'^mxdb^(Dx\ mmti^i>^^mtzhrzm'^\z(D 

iRS$nTli-5ffi<^li-^iiMlifjEBJ»©^K*tpJtg 

T-'f iT^, setc, ^mmumn-s-mmm 
^■^nx\^^tzWM(Jim'^mmzm-t^umtl^^$^^^z. 

[0 0 2 5] W*J«6®^BJ(J, W^]S5(O^BJ!c43ti 

±^3.>j7--< ^mii>^^tA^X'^. m-m^ommimmzm 

[0 0 2 6] imm7(DmM\t. m^m5$>^\,^iiQ(D 

^m.^-^io'^Tzmmmm^ b ^^mxafWLrz;^ y-t-i^ 
i^'-fi^xxh*. ntsmiR^Lrzmmm^mi'^xfH^xm 
mtL. mtmmmntth\zmmmmzw,mr^<D 

[0 0 2 7] m^m8(D^mit, m^M5nm.7(Di.^r 
un^mmmizM-t^i^3mm^^iL-t^ ::t\zj: 

-SWT, »SiJ;^c#i!fr^^fcL;t«^tc«^, iR^^nx 
i-^T, »^©StfSFsl«^!EBj-r-S{c!§iEt3«gfflT>'- 

#-^/0^*:^^<7if3. m^^iz<\^^mmzri^:it^m<z. 

tffiX^^, 

[0 0 2 8] li^JS9«^BJ«, if*:^17!;S8COt,i-r 

i$k^-9 1 ^m.^-^ioii:tzmmmm^ e. fH^xmmLtz 
Ti*igi5Tiif ^fb t . mmmmmmtt {ctBHii* tie 
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(5) 

7 

[0 0 2 9] sf*]«l OcD^Bjtt> l«*]19(D^aj(C43 
[0 0 3 0] W*]K1 Wj^«9«,^V^«1 



8 

*i T' # , H^T^- 37 5 nfcBt^iJ t Ml" S SEiaq :^ 

1--CCD. 2-ROM. 3-RAM, 4-CPU, 5 
-EEPROM. 6 •■•51(17}^- h, 7-5'-f7. 



[01] 



2 



ROM 



RAH 



L. 

CPU 



CCD 



BEPROM 



3S 



(51) Int. CL 6 

H0 4N 5/225 
5/232 
5/915 



F I 

H 0 4 L 9/00 
H0 4N 5/91 



6 7 5 D 
K 



